Win Min error message and IE home page redirect

poohzaka · Sep 2, 2004

I have read the KODO introductory message and downloaded all the tools except the about blank tools.

I have run all of these programs and can not defeat this win min error. Please help. I have copied the Hijack this log below.
Thanks.

chaslang · Sep 2, 2004

Bring up Task Manager by hitting CTRL-ALT-DEL and select processes. Find the below process and end it:
dllhlp.exe

Now Run HijackThis and put check marks on the following lines but do not click fix until you exit all your Internet Explorer browsers sessions (including the one you are reading this message in):
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://any-find.com/sp.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://any-find.com/index.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://any-find.com/index.htm
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dellnet.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://any-find.com/sp.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://any-find.com/index.htm
O4 - HKCU\..\Run: [dllhelp] c:\windows\dllhlp.exe
The exit HijackThis and Reset Web Settings by opening Internet Explorer. Then click Tools, Internet Options, Programs, and click the Reset Web Settings button. Then go back to the General tab and set your home page back to http://www.dellnet.com (I assumed that is what you wanted.)

Enable viewing of hidden files and folder: http://forums.majorgeeks.com/showthread.php?t=37650
Reboot in safe mode: http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406

Now run Windows Explorer and locate the below file and delete it:
C:\windows\dllhlp.exe

Now reboot normal mode and let me know how things are working.

poohzaka · Sep 2, 2004

Chaslang,
Thanks for your assistance. I followed your steps and the problem appears to be resolved. I will continue to run the Spy Bot, Ad Aware, CW shredder and Hijack this tools on a daily basis to ensure that something does not creep back in.

One last question. I deleted the C:\windows\dllhlp.exe in safe mode. However, I also found the following: dllhelp.exe-1360F1B0.pf in a folder called C:\Windows\Prefetch Should I be worried about this executable?
Thanks again for your help.

chaslang · Sep 3, 2004

Delete that file from Prefetch too and as a good measure empty your Recylce Bin too.

You do not need to run things daily but it won't hurt you if you have time to waste. I would say weekly scans are more than enough unless you surf a lot. HijackThis is not necessary. It does not fix anything. It only displays information that expert users can use to find problems. If you know how to interprete good from bad, it can be useful. If not, you could damage things by using it incorrectly. On the otherhand, you could save a current reference log and periodically compare against it for changes.

Get SpywareBlaster to block stuff from getting on your PC to begin with.

poohzaka · Sep 3, 2004

Can I delete it from Normal mode or do I have to go into Safe Mode?

Thanks again.

chaslang · Sep 3, 2004

Normal mode should work!

Log in or Sign up

Win Min error message and IE home page redirect

poohzaka Private E-2

Attached Files:

hjt.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

poohzaka Private E-2

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

poohzaka Private E-2

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

Log in or Sign up

Win Min error message and IE home page redirect

poohzaka Private E-2

Attached Files:

hjt.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

poohzaka Private E-2

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

poohzaka Private E-2

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

Useful Searches